Now that digital signatures have been hacked in the wild, I am curious as to Comodo’s response to this.
I am specifically concerned about Comodo’s CIS “whitelisting” capability. I assume they use digitial signatures in this feature to verifiy applications?
In particular does Defense+ use digital signatures to verify “safe” applications?
unfortunately Verisign (and Equifax, which is also a Verisign owned Root Key under Geotrust) are notoriously slow at responding. just check www.ccssforum.com malware section to see…